Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/915cbb-568a-4f42-8b80-ccb016ae1513/1/htC_UaPAcIYN4itodkyiDh1hjqM.roa
File: htC_UaPAcIYN4itodkyiDh1hjqM.roa (raw, json)
Hash identifier: 0jo2Ysxn+dxkELe6FMjUBnsJbTQNFy180su3mKBItOM=
Subject key identifier: 86:D0:BF:51:A3:C0:70:86:0D:E2:2B:68:76:4C:A2:0E:1D:61:8E:A3
Certificate issuer: /CN=336f6ac82f6f28e3d3e5b66475594d8318e75ab3
Certificate serial: 013B1C
Authority key identifier: 33:6F:6A:C8:2F:6F:28:E3:D3:E5:B6:64:75:59:4D:83:18:E7:5A:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M29qyC9vKOPT5bZkdVlNgxjnWrM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/915cbb-568a-4f42-8b80-ccb016ae1513/1/htC_UaPAcIYN4itodkyiDh1hjqM.roa
Signing time: Mon 14 Feb 2022 11:11:49 +0000
ROA not before: Mon 14 Feb 2022 11:11:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7155
IP address blocks: 185.109.163.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 80668 (0x13b1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=336f6ac82f6f28e3d3e5b66475594d8318e75ab3
Validity
Not Before: Feb 14 11:11:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=86d0bf51a3c070860de22b68764ca20e1d618ea3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:55:27:9d:db:c2:83:28:96:fe:b7:84:35:a0:
69:b7:f9:47:f8:50:ed:b5:b2:11:9c:17:74:f9:f7:
d4:e7:06:8c:e1:c9:7e:3f:38:19:68:c9:3b:62:bc:
a4:82:c2:f6:54:e7:43:26:8f:58:b8:0d:bd:48:14:
96:c0:08:fb:b1:87:57:6a:f4:96:b1:10:c8:2a:3e:
c8:a4:88:5b:44:62:d7:38:9f:69:60:2b:19:33:a7:
cd:52:98:a7:94:c1:20:a0:d8:23:e1:9c:43:cc:bb:
1c:ac:b4:68:09:8f:79:97:d5:7f:24:eb:62:67:e5:
4c:60:d5:7f:57:91:98:c5:63:3a:77:85:16:24:bc:
d8:32:aa:c7:1b:4e:f6:e2:ee:56:ec:a3:03:ce:75:
61:d2:fb:ed:48:d0:96:11:62:16:40:17:74:c9:fc:
2e:8f:c3:b4:00:ca:dd:a3:b1:8f:c7:c2:41:ef:dc:
98:5c:3b:a5:f1:5f:b2:c0:30:aa:81:95:48:95:fc:
84:a7:b4:b2:52:5d:53:31:1d:ba:d5:eb:98:03:5f:
98:a6:22:0b:4a:ac:30:c7:81:3d:16:23:a5:7d:28:
8f:16:9d:e3:07:06:2b:a7:11:e9:ba:e0:47:70:c3:
34:f4:86:fd:52:f2:77:68:18:a4:a6:77:0f:07:c2:
99:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:D0:BF:51:A3:C0:70:86:0D:E2:2B:68:76:4C:A2:0E:1D:61:8E:A3
X509v3 Authority Key Identifier:
keyid:33:6F:6A:C8:2F:6F:28:E3:D3:E5:B6:64:75:59:4D:83:18:E7:5A:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M29qyC9vKOPT5bZkdVlNgxjnWrM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/915cbb-568a-4f42-8b80-ccb016ae1513/1/htC_UaPAcIYN4itodkyiDh1hjqM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/915cbb-568a-4f42-8b80-ccb016ae1513/1/M29qyC9vKOPT5bZkdVlNgxjnWrM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.109.163.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:0c:71:5c:66:91:03:56:45:43:7e:53:4c:2a:62:b6:34:cc:
4f:f0:79:9b:39:bb:7f:0e:27:fd:47:48:f5:57:65:37:1c:9e:
70:ee:b7:58:40:df:1d:3a:57:09:2e:05:be:9e:a6:6d:a6:29:
66:93:2c:69:39:6f:6a:b6:18:d7:20:bc:31:e3:48:8f:80:a6:
03:af:b6:d9:87:fb:a9:8b:d3:44:f0:65:9d:92:e7:ea:df:8a:
52:10:3d:66:83:d3:0f:55:d7:5d:4c:ea:46:b9:ab:28:8e:a6:
69:93:bd:d7:30:6b:17:11:04:10:ef:cb:63:f3:a8:4a:4b:8a:
97:69:4a:08:e1:a7:5d:5e:38:0c:cc:ad:ea:6b:04:0c:e2:22:
99:b1:82:b4:15:c2:00:6e:8e:8d:d4:f1:e3:ba:0e:34:bd:48:
e4:32:aa:d2:1b:90:47:06:98:d5:20:96:54:09:c8:76:58:39:
90:3b:24:55:96:94:40:69:c2:bd:6e:a6:3e:1c:d7:58:3d:80:
8b:09:e7:20:44:6b:6e:1c:ab:1a:b9:f3:ec:b2:b5:f8:1c:be:
cf:21:9c:f4:18:98:57:d7:ed:50:0a:61:2c:07:2a:8d:11:af:
74:1a:a1:ca:c0:bf:46:39:3e:3a:67:24:55:90:28:31:0c:0b:
e5:5e:d1:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:38 2023 by rpki-client on console-fra.rpki-client.org